Wind River Support Network

HomeDefectsLIN8-9791
Fixed

LIN8-9791 : Security Advisory - ghostscript - CVE-2018-16802

Created: Sep 16, 2018    Updated: Dec 3, 2018
Resolved Date: Oct 9, 2018
Found In Version: 8.0.0.27
Severity: Standard
Applicable for: Wind River Linux 8
Component/s: Userspace

Description

An issue was discovered in Artifex Ghostscript before 9.25. Incorrect restoration of privilege checking when running out of stack during exception handling could be used by attackers able to supply crafted PostScript to execute code using the pipe instruction. This is due to an incomplete fix for CVE-2018-16509.

https://nvd.nist.gov/vuln/detail/CVE-2018-16802

Other Downloads


CVEs


Live chat
Online